KLA11761
Multiple vulnerabilities in VLC media player
Обновлено: 29/05/2020
Дата обнаружения
29/08/2019
Уровень угрозы
Warning
Описание

Multiple vulnerabilities were found in VLC media player. Malicious users can exploit these vulnerabilities to cause denial of service.

Below is a complete list of vulnerabilities:

  1. Integer Underflow vulnerability can be exploited to cause a denial of service;
  2. Heap-based buffer over-read vulnerability can be exploited to cause a denial of service;
  3. Divide-by-zero vulnerability can be exploited to cause a denial of service;
  4. Use-after-free vulnerability can be exploited to cause a denial of service;
  5. NULL pointer vulnerability can be exploited to cause a denial of service;
  6. Heap-based buffer overflow vulnerability can be exploited to cause a denial of service;
Пораженные продукты

VLC media player 3.0.7.1 and earlier

Решение

Update to the latest version
Download VLC media player

Первичный источник обнаружения
sb-vlc308
Оказываемое влияние
?
DoS 
[?]
Связанные продукты
VLC media player
CVE-IDS
CVE-2019-136020.0Unknown
CVE-2019-144370.0Unknown
CVE-2019-144380.0Unknown
CVE-2019-144980.0Unknown
CVE-2019-145330.0Unknown
CVE-2019-145340.0Unknown
CVE-2019-145350.0Unknown
CVE-2019-147760.0Unknown
CVE-2019-147770.0Unknown
CVE-2019-147780.0Unknown
CVE-2019-149700.0Unknown